China is developing an IPv4 to IPv6 transitional firewall Industry Standard

China is developing industry standards for the technical requirements for dual-stack firewalls, the first technical standard for firewall devices in the transition from IPv4 to IPv6 in China. The standards led by China Mobile and drafted by Huawei are still being formulated and are expected to be completed by 2013.

The IPv4 address has been allocated, and the development of IPv6 has been pushed to the agenda. However, the development of IPv6 networks still lacks commercial requirements. Therefore, the long-term coexistence of IPv4 and IPv6 is inevitable. Therefore, it is extremely important to develop the transition technology from IPv4 to IPv6. At present, IPv4 to IPv6 transition technologies mainly include dual-protocol stack (dual-stack), tunneling technology and translation technology.

For the dual-stack technical solution, attackers can use the two protocols in the dual-stack mechanism to bypass security monitoring and even conduct attacks. Network security is under threat. As a security product, two protocols must be supported at the same time for association analysis to ensure security. This puts forward new requirements for network security.

At present, China's specification for firewall equipment in the transitional period is still in its infancy, and the national and industrial standards for the technical requirements of dual-stack firewall equipment have not yet been formulated. Therefore, China Mobile took the lead and Huawei participated in the drafting of the "Technical Requirements for dual-stack firewall devices" industry standard, becoming China's first Technical Standard for firewall devices in the transition from IPv4 to IPv6. This standard is still being formulated and is expected to be completed by 2013.

It is reported that this standard mainly defines the technical specifications of IPv4/IPv6 Dual-stack firewall devices. Defines the firewall's requirements for processing IPv4/IPv6 packets, firewall security policies, security protection requirements that the firewall should support in various IPv4/IPv6 coexistence scenarios, and communication between IPv4 and IPv6 nodes. security protection requirements that the firewall should support. In addition, the Division of networks, the basic policies for inter-network communication, the implementation of firewall management, user interfaces, and the performance indicators of firewalls are also described.